At SystemHouse Solutions, we protect the privacy of our customers. Therefore, we want to inform you about how we will handle your personal data safely in the future.
Only through your permission we will store your contact details. This can be done, for example, by confirming a subscription to a newsletter, signing an agreement or contacting, makes a business request or provide you with information that is of value to you.
SystemHouse Solutions stores your personal information in accordance with the framework of decisions that apply for SystemHouse Solutions. The framework decisions contain information on when the framework should be done by documents containing your personal data.
SystemHouse Solutions is constantly working to take all appropriate technical and organizational measures that are required in each case to protect your personal data and otherwise ensure that the processing takes place in accordance with current legislation.
SystemHouse Solutions processes the personal information that is provided to us, such as name, email address, telephone number, address details, social security number, plant ID and information provided when using services provided by us (eg via cookies).
GDPR for system integrators
General Data Protection Regulation (GDPR) have consequences for you as a system provider of access control, burglar alarms, CCTV, telephony and other systems that handle personal data. As of May 2018, as a system supplier, you must comply with the new General Data Protection Regulation (GDPR). GDPR is a set of common European rules that puts users in focus:
- Users should know that the owner of a personal data system does not save unnecessarily much information about them.
- Users should be given the opportunity to control what is stored.
This affects owners of fire, access control, burglar alarms, CCTV, telephony and other systems that handle personal data, which also affects you as a supplier in several ways:
- The owners of the systems will probably need information from the supplier about the new privacy rules.
- The system provider responsible for the operation and / or service of the system has a partial responsibility for processing data according to GDPR.
Crucial to agreement, delivery
The GDPR specifies that anyone who accesses an access system must investigate whether the system provider can perform the assignment. That is to be able to deliver satisfactorily both technically and organizationally. In other words, you would have to offer a package solution with system and operation, you must also be able to meet the requirements of GDPR. This is confirmed by a so-called personal data access agreement between you as a system supplier and the owner of the current system as personal data manager. The procedures for deviation are an example of what to master.
Responsibility
Formally, the owner is responsible for the system and that the data is processed properly. Even if a company or real estate company chooses to interrupt the operation of the system to an external supplier, responsibility will not be outsourced. But you are not free of it, both you as a system supplier and service partner and the customer are jointly and severally liable for violations that have a negative impact on a user. In extreme cases, serious breaches of the GDPR will be imposed with fees up to four percent of the global turnover of a company. Therefore, it is important that you find out what policies you need to know within the new privacy rules.